[cisco-bba] L2TP VPDN authentication problem.....??

Mark Tohill Mark at u.tv
Mon Aug 1 06:06:03 EDT 2005


Hi,

 

We have a 7206VXR acting as an LNS for L2TP VPDN.

Our connection from Telco is 2 x 75MB (approx.)  PVC's carried across
STM-1.

We have several realms ' user at domain1.net' etc....

 

Our local RADIUS Server is getting hammered by requests of the form
'domain1.net':

 

See below:

 

Where are these being originated from? Obviously, from Telco ( I think),
but why and can they be filtered or stopped completely.

 

I'll post a config if necessary.

 

Thanks,

Mark

 

 

Mon Aug  1 00:00:16 2005: DEBUG: Packet dump:

*** Received from 192.168.1.100 port 1645 ....

Code:       Access-Request

Identifier: 44

Authentic:  <removed>

Attributes:

      User-Name = "utvdsl.net"

      User-Password = <removed>

      NAS-Port-Type = Virtual

      NAS-Port = 4381

      Connect-Info = "1158144"

      Service-Type = Outbound-User

      NAS-IP-Address = 192.168.1.100

 

Mon Aug  1 00:00:16 2005: DEBUG: Rewrote user name to utvdsl.net Mon Aug
1 00:00:16 2005: DEBUG: Rewrote user name to utvdsl.net Mon Aug  1
00:00:16 2005: DEBUG: Handling request with Handler
'Service-Type=Outbound-User'

Mon Aug  1 00:00:16 2005: DEBUG:  Deleting session for utvdsl.net,
192.168.1.100, 4381 Mon Aug  1 00:00:16 2005: DEBUG: do query is: DELETE
FROM [radonline] WHERE [username]='utvdsl.net' AND
[nasidentifier]='192.168.1.100' AND [nasport]='4381';

 

Mon Aug  1 00:00:16 2005: DEBUG: Handling with AuthINTERNAL: 

Mon Aug  1 00:00:16 2005: DEBUG: Access accepted for utvdsl.net Mon Aug
1 00:00:16 2005: DEBUG: Packet dump:

*** Sending to 192.168.1.100 port 1645 ....

Code:       Access-Accept

Identifier: 44

Authentic:  <removed>

Attributes:

      Ascend-Require-Auth = Require-Auth

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://puck.nether.net/pipermail/cisco-bba/attachments/20050801/ff3b82f4/attachment.html


More information about the cisco-bba mailing list